Appi. No. 10/814,218 

Amdt. Dated 12/20/2007 

Reply to Office action of September 20, 2007 

Amendments to the Claims: 

This listing of claiim will replace all prior versions, and listings, of claims in the apphcation: 

What is claimed is: 

L (Currently Amended) An apparatus comprising: 

a processor having a normal execution mode md a secure execution mode 
QOTironment to create a secure execution environmentra^d 

a rs ecure virtual machine monitor (S¥MM) to implcmont the secur e execution 
mode in which a plurality of separate virtual machines are created that operate simultaneously 
and separately from one another including at least a first virtual machine to implement trusted 
guest software in a protojted memory area and a second virtual machine to implement a non- 
trusted guest operating system (OS) in a non-protected memory area; and 

a secure virtual machine monitor f SVMM) wh e rein that responsive to a command 
to tear down the secure execution environment from the non-trusted guest OS , th e SVMM causes 
the processor to exit out of the secure execution mode, scrubs the protected memory area 
associated with the trusted guest software, tears down the secure execution environment, and 
instracts the non-trusted guest OS to resume control in the normal execution mode, 

2. (Original) The apparatus of claim 1, further comprising a virtual machine control 
structure (VCMS) to store guest state information related to the non-trusted guest operating 
system (OS) for use in restoring the non-trusted guest OS in the normal execution mode. 

3. (Original) The apparatus of claim 2, wherein the virtual machine control structure 
(VCMS) stores a guest OS entry point field to point to a command used for instructing the non- 
trusted guest OS to resume control at a virtual address and a host entry point field to point to a 
command to instmct the processor to exit out of a virtual machine execution mode. 

4. (Canceled) 

5. (Original) The apparatus of claim 4, jfurther comprising, the SVMM causing the 
processor to exit out of a virtual machine extension mode before exiting out of the secure 
execution mode when the secure execution environment is torn down* 

Docket No. 042390,P17825 Page 2 of 12 BTK/npe 



Appl No. 10/814,218 

Amdt. Dated 12/20/2007 

Reply to Office action of September 20, 2007 

6. (Caaceled) 

7. (Original) The apparatus of claim 1 , wherein the secure virtual machine monitor 
(SVMM) issues the command to tear down the secure execution environment. 

8. (Original) The apparatus of claim 7, wherein the secure virtual machine monitor 
(SVMM) issues the command to tear down the secure execution environment due to a detected 
seciuity breach, 

9. (Currently Amended) A method comprising: 

providing a normal execution mode in a processor and a secure execution mode in 

a processor; and 

creating a secure execution environment in which a plurality of separate virtual 
machines operate simultaneously and separately from one another including at least a first virtual 
machine to implement trusted guest software in a protected memory area and a second virtual 
machine to implement a non~trusted guest operating system (OS) in a non-protected memory 
area; 

wherein responsive to a command to tear down the secure execution enviroimient 
from the non-trusted guest 0S fr,11 exiting out of tiie secure execution mode, scrubbin g the 
protected memorv area associated with the trusted guest software, tearing down the secure 
execution environment, and instructing the non-trusted guest OS to resume control in the normal 
execution mode. 

1 0. (Original) The method of claim 9, further comprising storing guest state 
information related to the non-trusted guest operating system (OS) for use in restoring the non- 
trusted guest OS in the normal execution mode, 

1 1 * (Original) The method of claim 1 0, further comprising: 

storing a guest OS entry point field to point to a command used for instructing the 
guest OS to resume control at a virtual address; and 
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Storing a host entry point field to point to a command to instruct the processor to 

exit out of a virtual machine execution mode, 

12. (Canceled) 

13. (Original) The method of claim 12, further comprising causing the processor to 
exit out of a virtual machine extension mode before exiting out of the secure execution mode 
when the secure execution environment is tom down, 

14. (Canceled) 

1 5 . (Original) The method of claim 9, further comprising issuing the command to 
tear down the secure execution enviromnent due to a detected security breach. 

16. (Currently Amended) A machine-readable medium having stored thereon 
instructions, which when executed by a machine, cause the machine to perform the following 
operations comprising: 

providing a normal execution mode in a processor and a secure execution mode in 

a processor; and 

creating a secure execution environment in which a plurality of separate virtual 
machines that operate simultmeously and separately &om one another including at least a first 
virtual machine to implement trusted guest software in a protected memory area and a second 

virtual machine to implement a non-trusted guest operating system (OS) in a non-protected 
memory area; 

wherein responsive to a command to tear down the secure execution environment 
from the non-tn^ted guest OS FfJI exiting out of the secure execution mode, scmbbin g the 
protected memory area associated with the trusted guest software, tearing down the secure 
execution environment, and instructing the non-trusted guest OS to resume control in the normal 
execution mode, 

17. (Original) The machine-readable medium of claim 1 6, wherein the instructions 
cause the machine to perform further operations comprising storing guest state information 
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related to the non-trusted guest operating system (OS) for use in restoring the non-trusted guest 
OS in the normal execution mode. 

18. (Original) The machine-readable medium of claim 17, wherein the instructions 
cause the machine to perfomi further operations comprising: 

storing a guest OS entry point field to point to a command used for instructing the 
guest OS to resume control at a virtual address; and 

storing a host entry point field to point to a command to instruct the processor to 
exit out of a virtual machine execution mode. 

19. (Canceled) 

20. (Original) The machine-readable medium of claim 19, wherein the instructions 
cause the machine to perform further operations comprising causing the processor to exit out of a 
virtual machine extension mode before exiting out of the secure execution mode when the secure 
execution environment is torn down. 

21. (Canceled) 

22. (Original) The machine-readable medium of claim 16, wherein the instructions 
cause the machine to perform fiirther operations comprising issuing the command to tear down 
the secure execution environment due to a detected security breach. 

23. (Currently Amended) A system comprising; 

a processor including virtual machine extension (VMX) instruction 
support, the processor further having a normal execution mode and a secure 
execution mode to create a secure execution environment- 

a m o niory including a protect e d m e mory ar e a and a non prot e cted memory 
area; and 

a secure virtual machine monitor (S VMM) to implement the secure 
o x o cution environm e nt i n which a plurality of separate virtual machines are 
created that operate simultaneoi^ly and separately from one another including at 
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least a first virtual machine to implement trusted guest software in the protected 

memory area and a second virtual machine to implement a non-trusted guest 
operating system (OS) in the non-protected memory area; 

a memory including a protected memory area and a non-protected memory 
area; and 

a secure virtual machine monitor f S VMM> wfaeFeiH that responsive to a 
command to tear down the secure execution environment from the non-trusted 
guest OS- the SVMM causes the processor to exit out of the secure execution 

mode, scrubs the protected memory area associated with the trusted guest 
software, tears down the secure execution environment, and instructs the non- 
trusted guest OS to resume control in the normal execution mode. 

24. (Original) The system of claim 23, further comprising a virtual machine control 
structure (VCMS) to store guest state information related to the non-trusted guest operating 
system (OS) for use in restoring the non-trusted guest OS in the normal execution mode. 

25. (Original) The system of claim 24, wherein the virtual machine control structure 
(VCMS) stores a guest OS entry point field to point to a command used for instructing the non- 
trusted guest OS to r^ume control at a virtual address and a host entry point field to point to a 
command to instruct the proces^r to exit out of a virtual machine execution mode. 

26. (Canceled) . 

27. (Original) The system of claim 26, ftirther comprising, the SVMM causing the 
processor to exit out of a virtual machine extension mode before exiting out of secure execution 
mode when the secure execution environment is tom down. 

28. (Canceled) 



29. (Original) The system of claim 23, wherein the secure virtual machine monitor 
(SVMM) issues the command to tear down the secure execution environment. 
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30. (Original) The system of claim 29, wherein the secure virtual machine monitor 

(SVMM) issues the command to tear down the secure execution environment due to a detected 

security breach. 
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